Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

816cd76637...3e.exe

windows7-x64

7

816cd76637...3e.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    816cd76637f39326b52d0c9cc93014ed5779a553344af221fe7062acf505013e

  • Size

    8.0MB

  • Sample

    240826-eqs5jswanm

  • MD5

    e6430e54dd9a3cbbdf7db68839ca9ca0

  • SHA1

    a2af04d2b2e01974c89ee13c33dad52faf118666

  • SHA256

    816cd76637f39326b52d0c9cc93014ed5779a553344af221fe7062acf505013e

  • SHA512

    cfa34dc63384e3f577cb5641451402265a79083dc599e36794b698de5577cdf0ab08d894c9b00ed44e7a5735a71fde2e2fd2eb890f440fdf07ca9c09112d94a5

  • SSDEEP

    196608:zrpWV8lOtCU3sOAWQnTrpUC5ON+pkb/56AhDk5u:vCmOkuBETrSl0SK5u

Score
7/10
discovery

Malware Config

Targets

    • Target

      816cd76637f39326b52d0c9cc93014ed5779a553344af221fe7062acf505013e

    • Size

      8.0MB

    • MD5

      e6430e54dd9a3cbbdf7db68839ca9ca0

    • SHA1

      a2af04d2b2e01974c89ee13c33dad52faf118666

    • SHA256

      816cd76637f39326b52d0c9cc93014ed5779a553344af221fe7062acf505013e

    • SHA512

      cfa34dc63384e3f577cb5641451402265a79083dc599e36794b698de5577cdf0ab08d894c9b00ed44e7a5735a71fde2e2fd2eb890f440fdf07ca9c09112d94a5

    • SSDEEP

      196608:zrpWV8lOtCU3sOAWQnTrpUC5ON+pkb/56AhDk5u:vCmOkuBETrSl0SK5u

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks